Posted by Thegrideon Software on May 10

+ Credits: Maxim Tomashevich from Thegrideon Software
+ Website: https://www.thegrideon.com/
+ Details: https://www.thegrideon.com/qb-internals-sql.html

Vendor:
———————
www.intuit.com, www.intuit.ca, www.intuit.co.uk

Product:
———————
QuickBooks Desktop versions: 2007 – 2016

Vulnerability Type:
———————
Arbitrary SQL / Code Execution

Vulnerability Details:
———————
QuickBooks company files…